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in specificity each of the applicant's bases for overcoming the examiner's rejections and 
objections. 

Claims 1-40 (including new claim 40) are now pending. 

As described in the application, a system and method are provided for use in distributing 
access to a data item (e.g., book data). For example, at a publisher computer, publisher 
permission data is stored that allows a number A of end-user computers to gain access to an 
encrypted book data item. Based on the publisher permission data, a distributor computer is 
provided with distributor permission data that allows a number B of end-user computers to gain 
access to the encrypted book data item. The publisher permission data is changed so that the 
publisher permission data allows only a number A-B of end-user computers to gain access to the 
encrypted book data item. Based on the distributor permission data, a retailer computer is 
provided with retailer permission data that allows a number C of end-user computers to gain 
access to the encrypted book data item. The distribution permission data is changed so that the 
distributor permission data allows only a number B-C of end-user computers to gain access to 
the encrypted book data item. Based on the retailer permission data, an end-user computer is 
provided with end-user permission data that allows 1 end-user computer to gain access to the 
encrypted book data item, wherein the end-user permission data may be used to gain access to a 
piece of the encrypted book data item at a time. The retailer permission data is changed so that 
the retailer permission data allows only a number C-l of end-user computers to gain access to the 
encrypted book data item. 

Claims 22, 25, 29, 31-32, 36, and 39 have been rejected under 35 U.S.C. 112, second 
paragraph, as being indefinite. Claims 22, 24, 29, 31 , 36, and 38 have been amended to address 
the action's statements regarding the term "substantially", and claims 25, 32, and 39 have been 
amended to address the action's statements concerning a negative number of end-users. 

All of the original independent claims (1, 20-39) have been amended and a new 
independent claim 40 has been added. All of the independent claims recite that access is able to 
gained to a piece of encrypted data at a time . New claim 40 is directed specifically to using an 
instance of permission to gain access to a page of the encrypted book data item at a time for 
display purposes. Support may be found in the specification at least at page 15, lines 10-12. 
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All of the claims have been rejected over U.S. Patent No. 5,109,41 3 to Comerford et al 
("Comet-ford") in view of one or more of U.S. Patent No. 5,629,980 to Stefik et al ("Stefik") and 
U.S. Patent No. 6,230,267 to Richards et al ("Richards"). 

Comerford discloses a software asset protection mechanism that segregates the right to 
execute software from the software itself. The rights to execute, when installed on a composite 
computing system, are stored in a coprocessor element of the composite computing system. The 
software asset protection mechanism is provides for the manipulation of those rights to execute. 
The rights to execute can be conditioned in terms of a valid period of execution or a valid 
number of executions. The rights to execute can be safely transferred from one coprocessor to 
another, or can be returned to the software vendor. A method of backing up the rights to execute 
provides the user with the rights to execute in the event the coprocessor element of the composite 
computing system fails. 

Stefik discloses a system for controlling use and distribution of digital works. The owner 
of a digital work attaches usage rights to that work. Usage rights are granted by the "owner" of a 
digital work to "buyers" of the digital work. The usage rights define how a digital work may be 
used and further distributed by the buyer. Each right has associated with it certain optional 
specifications which outline the conditions and fees upon which the right may be exercised. 
Digital works are stored in a repository. A repository will process each request to access a digital 
work by examining the corresponding usage rights. Digital work playback devices, coupled to 
the repository containing the work, are used to play, display or print the work. Access to digital 
works for the purposes of transporting between repositories (e.g. copying, borrowing or transfer) 
is carried out using a digital work transport protocol. Access to digital works for the purposes of 
replay by a digital work playback device (e.g. printing, displaying or executing) is carried out 
using a digital work playback protocol. 

Richards discloses a method and apparatus for securely transporting data onto an IC card. 
The method is used, for example, to transport data, including application programs, in a secure 
manner from a source located outside the IC card. At least a portion of the data is encrypted 
using the public key of a public/secret key pair of the intended IC card unit. The encrypted data 
is then sent to the IC card and the IC card verifies the key transformation unit using its unique 
secret key. The data can then be stored on the IC card. A copy of the public key signed by a 
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certification authority can be used to verify that the card is authorized to be part of the overall 
authorized system. 

The action states that the method disclosed in Comerford differs from the claimed 
invention since the right to execute in Comerford permits a user to access software . The 
applicant submits that Comerford is in even further removed from the claimed invention in that 
Comerford is directed to giving the user the right to execute software . The claims, which are 
directed to distributing access to a data item, have been amended and a new claim has been 
added to make clear that access is able to gained to a piece of encrypted data (e.g.. a page of 
book data) at a time . Comerford teaches nothing about gaining access to a piece of encrypted 
data at a time, and neither Comerford nor Stefik offers a hint as to whether Comerford's system 
could be adapted to provide such a capability. Comerford and Stefik are too different to serve as 
combinable teachings. First of all, Comerford is directed to software execution, and Stefik is 
directed to distributing digital works. In addition, Comerford describes a decentralized 
distribution system, and Stefik discloses a centralized repository system. Furthermore, in the 
case of executing software, which is the subject of Comerford, it is entirely unclear from a 
practical viewpoint what would constitute the piece of encrypted data to which access would be 
gained a piece at a time as required by the claims, or how that piece could be compatible with 
Comerford's software execution system. Neither Stefik nor Richards answers these questions. 

The dependent claims are patentable for at least the same reasons stated above in 
connection with the independent claims. 

The applicant submits that the application is in condition for allowance, which action is 
requested. 
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The Commissioner is hereby authorized to charge the extra claim fee, if any, to our 
Deposit Account No. 08-0219. The Commissioner is also authorized to charge any other fee 
required to maintain the pendency of the application, or to credit any overpayment to Deposit 
Account No. 08-0219. 



Hale and Dorr LLP 
60 State Street 
Boston, MA 02109 
Tel.: (617) 526-6010 
Fax: (617) 526-5000 



Respectfully submitted, 



Dated: March 4, 2002 




Jason A. Reyes 
Registration No. 41,513 
Attorney for Applicants 
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1. 



A method for use in distributing access to a data item, comprising: 



allowing multiple transfers between computers of a single instance of permission to gain 
access to [the] an encrypted data item, the transfers occurring across data connections and 
including a first transfer between a first computer and a second computer and a subsequent 
transfer between the second computer and a third computer, wherein at any one time only one 
computer retains the instance of permission and is able to use the instance of permission to gain 
access to a piece of the encrypted data item at a time . 

2. The method of claim 1, further comprising: 

using an encryption key to impede unauthorized access to the encrypted data item. 

3. The method of claim 1, wherein at least one of the transfers of permission 
includes the transfer of a first encryption key. 

4. The method of claim 3, further comprising: 

using a second encryption key to encrypt the first encryption key prior to transfer. 

5. The method of claim 4, wherein the first encryption key includes a secret key and 
the second encryption key includes one of the keys in a public/private key set. 

6. The method of claim 1, further comprising: 

using highly secure circuitry to help ensure that at any one time only one of the 
computers retains and is able to use the instance. 

7. The method of claim 6, wherein the highly secure circuitry includes a smartcard 
computer. 

8. The method of claim 6, wherein the highly secure circuitry includes a de- 



encryptor. 



9. The method of claim 6, further comprising: 
storing an encryption key in the highly secure circuitry. 

10. The method of claim 9, further comprising: 

using the encryption key only within the highly secure circuitry. 

1 1 . The method of claim 1 , further comprising: 
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determining whether a computer is authorized to receive the instance of permission to 
gain access to the encrypted data item. 

12. The method of claim 1, further comprising: 

according to an expiration time, rendering at least one of transfers temporary. 

1 3. The method of claim 12, further comprising: 

in the temporary transfer, transmitting a copy of an encryption key from a sender 
computer to a recipient computer, and, at the expiration time, erasing the copy of the encryption 
key from the recipient computer. 

1 4. The method of claim 1 , further comprising: 

in one of the transfers, transmitting a copy of an encryption key from a sender computer 
to a recipient computer, and erasing the copy of the encryption key from the sender computer. 

15. The method of claim 1, further comprising: 
associating at least one of the transfers with a transfer of funds. 

16. The method of claim 1, further comprising: 

distinguishing between different instances of permission to gain access to the encrypted 
data item. 

17. The method of claim 1 , wherein at least one of the computers includes a Web 
server computer. 

1 8. The method of claim 1 , wherein at least one of the computers includes a book 
viewing device. 

19. The method of claim 18, wherein the book viewing device includes a viewing 
screen and data communications circuitry. 

20. A method comprising: 

in accordance with access distribution parameters that are specific to [a] an encrypted 
data item and that were established by a first computer, transferring, across a data connection 
from a second computer to a third computer and independently of the first computer, permission 
to gain access to the encrypted data item , wherein the permission may be used to gain access to a 
piece of the encrypted data item at a time . 

21 . A method comprising: 

impeding a change to the number of computers that are allowed to gain access to [a] an 
encrypted data item, independently of data connection transfers between computers of 
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permission to gain access to the encrypted data item , wherein the permission may be used to gain 
access to a piece of the encrypted data item at a time . 

22. A method for use in distributing access to a data item, comprising: 

providing a first computer with permission to gain access to [the] an encrypted data itern^ 
wherein the permission may be used to gain access to a piece of the encrypted data item at a 
time ; 

providing the permission by data connection to a second computer [substantially 
simultaneously with] and removing the permission from the first computer; and 

providing the permission by data connection to a third computer [substantially 
simultaneously with] and removing the permission from the second computer. 

23. A method comprising: 

rendering accountably fungible an instance of permission data that allows a computer to 
gain access to encrypted book dat a, wherein the instance of permission data may be used to gain 
access to a piece of the encrypted book data at a time . 

24. A method for use in distributing access to a book data item, comprising: 
associating highly secure circuitry with a device that is able to send and receive access 

data that is necessary to gain access to [the] an encrypted book data item , wherein the access data 
may be used to gain access to a piece of the encrypted book data item at a time , the highly secure 
circuitry including a computer processor and a program memory and being able to [substantially 
prevent] help an unauthorized transfer of the access data from the device. 

25. A method for use in distributing access to a book data item, comprising: 

at a publisher computer, storing publisher permission data that allows a number A of end- 
user computers to gain access to [the] an encrypted book data item; 

based on the publisher permission data, providing a distributor computer with distributor 
permission data that allows a number B of end-user computers to gain access to the encrypted 
book data item; 

changing the publisher permission data so that the publisher permission data allows only 
a number A-B of end-user computers to gain access to the encrypted book data item; 

based on the distributor permission data, providing a retailer computer with retailer 
permission data that allows a number C of end-user computers to gain access to the encrypted 
book data item; 
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changing the distribution permission data so that the distributor permission data allows 
only a number B-C of end-user computers to gain access to the encrypted book data item; 

based on the retailer permission data, providing an end-user computer with end-user 
permission data that allows 1 end-user computer to gain access to the encrypted book data item A 
wherein the end-user permission data may be used to gain access to a piece of the encrypted 
book data item at a time ; and 

changing the retailer permission data so that the retailer permission data allows only a 
number C-l of end-user computers to gain access to the encrypted book data itenv; 

wherein number A-B is non-negative, number B-C is non-negative, and number C-l is 
non-negative , 

26. A system for use in distributing access to a data item, comprising: 

data processing apparatus for allowing multiple transfers between computers of a single 
instance of permission to gain access to [the] an encrypted data item, the transfers occurring 
across data connections and including a first transfer between a first computer and a second 
computer and a subsequent transfer between the second computer and a third computer, wherein 
at any one time only one computer retains the instance of permission and is able to use the 
instance of permission to gain access to the encrypted data item , wherein the instance of 
permission may be used to gain access to a piece of the encrypted data item at a time . 

27. A system comprising: 

a transferor, in accordance with access distribution parameters that are specific to [a] an 
encrypted data item and that were established by a first computer, transferring, across a data 
connection from a second computer to a third computer and independently of the first computer, 
permission to gain access to the encrypted data item , wherein the permission may be used to gain 
access to a piece of the encrypted data item at a time . 

28. A system comprising: 

an impedor impeding a change to the number of computers that are allowed to gain 
access to [a] an encrypted data item, independently of data connection transfers between 
computers of permission to gain access to the encrypted data item , wherein the permission may 
be used to gain access to a piece of the encrypted data item at a time . 

29. A system for use in distributing access to a data item, comprising: 
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a first permission provider providing a first computer with permission to gain access to 
[the] an encrypted data item , wherein the permission may be used to gain access to a piece of the 
encrypted data item at a time ; 

a second permission provider providing the permission by data connection to a second 
computer [substantially simultaneously with] and removing the permission from the first 
computer; and 

a third permission provider providing the permission by data connection to a third 
computer [substantially simultaneously with] and removing the permission from the second 
computer. 

30. A system comprising: 

a renderor rendering accountably fungible an instance of permission data that allows a 
computer to gain access to encrypted book dat a, wherein the instance of permission data may be 
used to gain access to a piece of the encrypted book data at a time . 

31. A system for use in distributing access to a book data item, comprising: 

a device including highly secure circuitry, the device being able to send and receive 
access data that is necessary to gain access to [the] an encrypted book data item , wherein the 
access data may be used to gain access to a piece of the encrypted book data item at a time , the 
highly secure circuitry including a computer processor and a program memory and being able to 
help [substantially] prevent an unauthorized transfer of the access data from the device. 

32. A system for use in distributing access to a book data item, comprising: 

at a publisher computer, a storer for storing publisher permission data that allows a 
number A of end-user computers to gain access to [the] an encrypted book data item; 

a first permission provider for, based on the publisher permission data, providing a 
distributor computer with distributor permission data that allows a number B of end-user 
computers to gain access to the encrypted book data item; 

a first permission changer for changing the publisher permission data so that the 
publisher permission data allows only a number A-B of end-user computers to gain access to the 
encrypted book data item; 

a second permission provider for, based on the distributor permission data, providing a 
retailer computer with retailer permission data that allows a number C of end-user computers to 
gain access to the encrypted book data item; 
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a second changer for changing the distribution permission data so that the distributor 
permission data allows only a number B-C of end-user computers to gain access to the encrypted 
book data item; 

a third permission provider for, based on the retailer permission data, providing an end- 
user computer with end-user permission data that allows 1 end-user computer to gain access to 
the encrypted book data item , wherein the end-user permission data may be used to gain access 
to a piece of the encrypted book data item at a time ; and 

a third changer for changing the retailer permission data so that the retailer permission 
data allows only a number C-l of end-user computers to gain access to the encrypted book data 
item; 

wherein number A-B is non-negative, number B-C is non-negative, and number C-l is 
non-negative . 

33. Computer software, residing on a computer-readable medium, comprising 
instructions for use in distributing access to a data item, the instructions causing a computer to: 

allow multiple transfers between computers of a single instance of permission to gain 
access to [the] an encrypted data item, the transfers occurring across data connections and 
including a first transfer between a first computer and a second computer and a subsequent 
transfer between the second computer and a third computer, wherein at any one time only one 
computer retains the instance of permission and is able to use the instance of permission to gain 
access to the encrypted data item , wherein the instance of permission may be used to gain access 
to a piece of the encrypted data item at a time . 

34. Computer software, residing on a computer-readable medium, comprising 
instructions for causing a computer to: 

in accordance with access distribution parameters that are specific to [a] an encrypted 
data item and that were established by a first computer, transfer, across a data connection from a 
second computer to a third computer and independently of the first computer, permission to gain 
access to the encrypted data item , wherein the permission may be used to gain access to a piece 
of the encrypted data item at a time . 

35. Computer software, residing on a computer-readable medium, comprising 
instructions for causing a computer to: 
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impede a change to the number of computers that are allowed to gain access to [a] an 
encrypted data item, independently of data connection transfers between computers of 
permission to gain access to the encrypted data item , wherein the permission may be used to gain 
access to a piece of the encrypted data item at a time , 

36. Computer software, residing on a computer-readable medium, comprising 
instructions for use in distributing access to a data item, the instructions causing a computer to: 

provide a first computer with permission to gain access to [the] an encrypted data iterr^ 
wherein the permission may be used to gain access to a piece of the encrypted data item at a 
time ; 

provide the permission by data connection to a second computer [substantially 
simultaneously with] and removing the permission from the first computer; 

provide the permission by data connection to a third computer [substantially 
simultaneously with] and removing the permission from the second computer. 

37. Computer software, residing on a computer-readable medium, comprising 
instructions for causing a computer to: 

render accountably fungible an instance of permission data that allows a computer to gain 
access to encrypted book dat a, wherein the instance of permission data may be used to gain 
access to a piece of the encrypted book data at a time . 

38. Computer software, residing on a computer-readable medium, comprising 
instructions for use in distributing access to a book data item, the instructions causing a computer 
to: 

associate highly secure circuitry with a device that is able to send and receive access data 
that is necessary to gain access to [the] an encrypted book data item , wherein the access data may 
be used to gain access to a piece of the encrypted book data item at a time , the highly secure 
circuitry including a computer processor and a program memory and being able to [substantially 
prevent] help an unauthorized transfer of the access data from the device. 

39. Computer software, residing on a computer-readable medium, comprising 
instructions for use in distributing access to a book data item, the instructions causing a computer 
to: 

at a publisher computer, store publisher permission data that allows a number A of end- 
user computers to gain access to [the] an encrypted book data item; 
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based on the publisher permission data, provide a distributor computer with distributor 
permission data that allows a number B of end-user computers to gain access to the encrypted 
book data item; 

change the publisher permission data so that the publisher permission data allows only a 
number A-B of end-user computers to gain access to the encrypted book data item; 

based on the distributor permission data, provide a retailer computer with retailer 
permission data that allows a number C of end-user computers to gain access to the encrypted 
book data item; 

change the distribution permission data so that the distributor permission data allows only 
a number B-C of end-user computers to gain access to the encrypted book data item; 

based on the retailer permission data, provide an end-user computer with end-user 
permission data that allows 1 end-user computer to gain access to the encrypted book data item A 
wherein the end-user permission data may be used to gain access to a piece of the encrypted 
book data item at a time : and 

change the retailer permission data so that the retailer permission data allows only a 
number C-l of end-user computers to gain access to the encrypted book data item; 

wherein number A-B is non-negative, number B-C is non-negative, and number C-l is 
non-negative . 

40. A method for use in distributing access to a data item, comprising: 
allowing multiple transfers between computers of a single instance of permission to gain 
access to an encrypted book data item, the transfers occurring across data connections and 
including a first transfer between a first computer and a second computer and a subsequent 
transfer between the second computer and a third computer, wherein at any one time only one 
computer retains the instance of permission and is able to use the instance of permission to gain 
access to a page of the encrypted book data item at a time for display purposes. 
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